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(54) Information processing apparatus, information processing method and providing medium 



(57) In an information processing apparatus, a key 
management unit forms a judgment as to whether an 
authentication key owned by an application program is 
valid or invalid. A content protection unit is controlled so 
that contents are exchanged between the information 
processing apparatus and the application program only 
if the authentication key is found valid. An encryp- 
tion/decryption unit encrypts a decrypted content by 
using an encryption key received from a key manage- 
ment unit and outputs the encrypted content to an 
encrypted-information addition unit. The encrypted- 
information addition unit adds encrypted information to 
the encrypted content received from the encryp- 
tion/decryption unit and outputs the encrypted content 
with the encrypted information added thereto to the 
application program. 

As a result, it is possible to prevent a content from 
being utilized illegally. 
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Description 

BACKGROUND OF THE INVENTION 
Field of the Invention 

[0001] The present invention relates to an informa- 
tion processing apparatus, an information processing 
method and a providing medium. More particularly, the 
present invention relates to an information processing 
apparatus, an information processing method and a 
providing medium which are suitable for applications in 
which unauthorized use of a content must be avoided. 

Description of the Related Art 

[0002] As a conventional technique to prevent a 
content with a protected copyright from being illegally 
copied, a SCMS (Serial Copy Management System) or 
a CGMS (Copy Generation Management System) are 
adopted in an apparatus capable of recording such a 
content. Examples of the content are audio data 
recorded on a CD (Compact Disc) and AV data 
recorded on a DVD (Digital Versatile Disc). Such a con- 
tent can be recorded typically by an MD (Mini Disc) 
recorder, a CD-R recorder or a DV (Digital Video) 
recorder. In the SCMS and the CGMS, predetermined 
information is added to a content to limit the number of 
allowable copies. 

[0003] In recent years, it is possible to exchange a 
content between an AV apparatus for playing back or 
recording a content and a personal computer through 
an IEEE1394 bus. With the personal computer employ- 
ing a CPU having an increased processing power and a 
hard disc having an increased storage capacity, the per- 
sonal computer is capable of playing back, recording 
and editing a content. 

[0004] Thus, if an illegal application program for 
intentionally falsifying the aforementioned information 
added to a content is installed in a personal computer, 
there will be raised a problem of an inability to prevent 
the content from being copied by the personal computer 
illegally. 

SUMMARY OF THE INVENTION 

[0005] It is an object of the present invention 
addressing the problems described above to provide an 
information processing apparatus, an information 
processing method and a providing medium which are 
capable of preventing a content from being used ille- 
gally by using an illegal application program installed in 
a personal computer by encrypting the content before 
supplying the content to the application program. 
[0006] An information processing apparatus pro- 
vided by the present invention includes an encryption- 
key generation means for generating an encryption key 
by using a source key corresponding to copyright infor- 



mation added to an input content, an encryption means 
for encrypting the content by using the encryption key, a 
judgment means for forming a judgment on validity of an 
application program by using an authentication key 

5 received from the application program, a secret-key 
generation means for generating a secret key by using 
the authentication key received from the application pro- 
gram, and a supply means for supplying an encryption 
key encrypted by using the secret key generated by the 

10 secret-key generation means and the content encrypted 
by the encryption means to the application program in 
dependence on a result of the judgment formed by the 
judgment means. 

[0007] An information processing method provided 

is by the present invention includes an encryption-key 
generation step of generating an encryption key by 
using a source key corresponding to copyright informa- 
tion added to an input content, an encryption step of 
encrypting the content by using the encryption key, a 

20 judgment step of forming a judgment on validity of an 
application program by using an authentication key 
received from the application program, a secret-key 
generation step of generating a secret key by using the 
authentication key received from the application pro- 

25 gram, and a supply step of supplying the encryption key 
encrypted by using the secret key generated at the 
secret-key generation step and the content encrypted at 
the encryption step to the application program in 
dependence on a result of the judgment formed at the 

30 judgment step. 

[0008] A providing medium is used for providing a 
program to be read out by a computer for driving an 
information processing apparatus to carry out process- 
ing including an encryption -key generation step of gen- 

35 erating an encryption key by using a source key 
corresponding to copyright information added to an 
input content, an encryption step of encrypting the con- 
tent by using the encryption key, a judgment step of 
forming a judgment on validity of an application program 

40 by using an authentication key received from the appli- 
cation program, a secret-key generation step of gener- 
ating a secret key by using the authentication key 
received from the application program, and a supply 
step of supplying the encryption key encrypted by using 

45 the secret key generated at the secret-key generation 
step and the content encrypted at the encryption step to 
the application program in dependence on a result of 
the judgment formed at the judgment step. 
[0009] In the information processing apparatus, the 

so information processing method and the providing 
medium which are provided by the present invention, an 
encryption key is generated by using a source key cor- 
responding to copy right information added to an input 
content, and the content is encrypted by using the 

55 encryption key. In addition, a secret key is generated by 
using an authentication key received from an applica- 
tion program and a judgment on validity of the applica- 
tion program is formed. An encryption key encrypted by 
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using the secret key and the content encrypted by using 
the encryption key are supplied to the application pro- 
gram in dependence on a result of the judgment 
[0010] As described above, according to the infor- 
mation processing apparatus, the information process- 
ing method and the providing medium which are 
provided by the present invention, a judgment on validity 
of an application program is formed on the basis of an 
authentication key, and an encryption key encrypted by 
using a secret key and a content encrypted by using the 
encryption key are supplied to the application program 
in dependence on a result of the judgment. It is thus 
possible to prevent a content from being used illegally. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0011] 

Fig. 1 is a block diagram showing a typical configu- 
ration of a personal computer to which the present 
invention is applied; 

Fig. 2 is a block diagram showing a typical configu- 
ration of an IEEE 1394 interface employed in the 
personal computer shown in Fig. 1 ; 
Fig. 3 is a block diagram showing a typical configu- 
ration of a content protection unit employed in the 
IEEE1394 interface shown in Fig. 2; 
Fig. 4 is a block diagram showing a function of an 
application activated in the personal computer; 
Fig. 5 shows a flowchart representing input 
processing of the IEEE1394 interface shown in Fig. 
1; and 

Fig. 6 shows a flowchart representing output 
processing of the IEEE1394 interface shown in Fig. 
1. 

DETAILED DESCRIPTION OF THE PREFERRED 
EMBODIMENT 

[0012] A typical configuration of a personal compu- 
ter (PC) 1 to which the present invention is applied is 
explained by referring to Fig. 1 . As shown in the figure, 
the personal computer 1 is connected to apparatuses 
capable of handing contents by an IEEE1394 bus 2. 
Examples of such apparatuses are a DV recorder (DVR) 
3, a set top box (STB) 4 and a hard disc (HDD) 5. 
[0013] It should be noted that a content communi- 
cated through the IEEE1394 bus 2 is encrypted in 
accordance with a DTLA method licensed by the DTLA 
(Digital Transmission Licensing Administrator), a licens- 
ing company, as recommended by a CPTWG (Copy 
Protection Technical Work Group). 
[0014] The personal computer 1 comprises a 
IEEE1394 interface 11, a CPU 1 2, a RAM 13,aROM 14 
and a hard disc 15 which are connected to each other 
by a bus 1 6. The IEEE1394 interface 1 1 supplies a con- 
tent received from another apparatus such as the DVR 
3 through the IEEE1394 bus 2 to an application pro- 



gram activated in the personal computer 1 . The applica- 
tion program is capable of carrying out processing such 
as operations to play back, record and edit a content An 
application program capable of carrying out processing 

5 such as operations to play back, record and edit a con- 
tent is referred to hereafter simply as an application. In 
addition, the IEEE1394 interface 1 1 also outputs a con- 
tent processed by the application to another apparatus 
through the IEEE1394 bus 2. 

10 [0015] It should be noted that an application pro- 
gram is stored in the hard disc 1 5, loaded into the RAM 
13 under control of the CPU 12 based on a BIOS stored 
in the ROM 1 4 and then activated. A person in charge of 
an encryption system such as the DTLA supplies an 

is intrinsic authentication key Kn to the application pro- 
gram. In order to obtain this authentication key, the user 
needs to make a contract or the like with the producer of 
the application program. Such a contract is made for 
preventing a content with a protected copyright from 

20 being used illegally. 

[0016] The technical term "system" used in this 
specification implies a complete total apparatus includ- 
ing a plurality of apparatuses and means. 
[0017] The authentication key Kn includes a pair of 

25 values, namely, an ID and a signature. A result obtained 
from the application of a predetermined processing for- 
mula to one of the 2 values is the other value. By apply- 
ing the predetermined processing formula to both the ID 
and the signature, it is possible to verify whether or not 

30 they are a correct pair. The only component knowing 
this predetermined processing formula, that is, the only 
component capable of forming a judgment on validity of 
the authentication key Kn is a key management unit 31 . 
In addition, since it is extremely difficult to reversely find 

35 the predetermined processing formula from the ID and 
the signature, the authentication key Kn can not practi- 
cally be forged. 

[001 8] Fig. 2 is a block diagram showing details of a 
typical configuration of an IEEE1394 interface 11. A 

40 control unit 21 controls the components employed in the 
IEEE1394 interface 1 1 . An input/output unit 22 receives 
a content encrypted in accordance with the DTLA 
method from the IEEE1394 bus 2, passing on the con- 
tent to a CCI (Copy Control Information) detection unit 

45 23. The CCI detection unit 23 forwards the content 
received from the input/output unit 22 to a DTLA encryp- 
tion/decryption unit 24. The CCI detection unit 23 
detects a 2-bit CCI recorded in the header of the con- 
tent, supplying the CCI to a control unit 21, the DTLA 

so encryption/decryption unit 24 and a content protection 
unit 25. 

[001 9] It should be noted that the CCI is information 
on control of permitted operations to copy a content to 
which the CCI is added. The CCI can have one of 4 val- 
55 ues, namely, 00, 10, 01 and 1 1 . A CCI value of 00 rep- 
resents "Copy Free" control which means that an 
unlimited number of operations to copy the content are 
permitted. A CCI value of 1 0 represents "One Genera- 
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tor Copy Possible" control which indicates that the con- 
tent can be copied only once. A CCI value of 01 
represents "No More Copy" control which indicates a 
second generation of a content. A second generation is 
a result of copying a content with a CCI value of 10. An 
operation to copy a second generation is not permitted. 
A CCI value of 11 represents "Never Copy" control 
which indicates that an operation to copy the content is 
not permitted. 

[0020] The DTLA encryption/decryption unit 24 
decrypts a content, which was encrypted in accordance 
with the DTLA method and is received from the CCI 
detection unit 23, and supplies the result of the decryp- 
tion to the content protection unit 25. In addition, the 
DTLA encryption/decryption unit 24 encrypts a content 
received from the content protection unit 25 by adopting 
the DTLA method and supplies the result of the encryp- 
tion to the input/output unit 22. It should be noted that 
the encryption and the decryption in the DTLA encryp- 
tion/decryption unit 24 are carried out after mutual 
authentication work defined by the DTLA method 
between the DTLA encryption/decryption unit 24 and 
the DVR 3 serving as an apparatus generating a content 
has been completed. 

[0021] The content protection unit 25 encrypts a 
content received from the DTLA encryption/decryption 
unit 24 and supplies the encrypted content to the appli- 
cation. In addition, the content protection unit 25 
decrypts an encrypted content received from the appli- 
cation and supplies the decrypted content to the DTLA 
encryption/decryption unit 24. A key storage unit 26 is 
used for storing a plurality of source keys Ks for all CCI 
values. The source keys Ks are used in the encryption 
processing carried out by the content protection unit 25. 
[0022] Hg. 3 is a block diagram showing details of a 
typical configuration of the content protection unit 25. A 
key management unit 31 forms a judgment as to 
whether or not an authentication key Kn received from a 
key management unit 41 of an application shown in Fig. 
4 is valid. If the authentication key Kn is found valid, 
components employed in the content protection unit 25 
are controlled so as to exchange contents with the 
application. 

[0023] To put it in detail, the key management unit 
31 applies a predetermined processing formula to an ID 
included in the authentication key Kn received from the 
application. Then, the key management unit 31 forms a 
judgment as to whether or not the result of applying the 
predetermined formula to the ID is equal to a signature 
included in the same authentication key Kn. If the result 
of applying the predetermined formula to the ID is found 
equal to the signature included in the same authentica- 
tion key Kn, that is, if the authentication key Kn is found 
valid, the key management unit 31 further forms a judg- 
ment as to whether or not the ID and the signature form 
a valid key by applying a predetermined processing for- 
mula to the ID and the signature. If the key Kn compris- 
ing the ID and the signature is found valid, the key 



management unit 31 reads out a source key Ks corre- 
sponding to a CCI value supplied by the CCI detection 
unit 23 from the key storage unit 26. The key manage- 
ment unit 31 then generates an encryption key Kc by 

5 using the source key Ks and a random number, supply- 
ing the encryption key Kc to an encryption/decryption 
unit 32. It should be noted that the encryption key Kc is 
updated at intervals typically in range 30 to 120 sec- 
onds. The key management unit 31 outputs a CCI value 

io to an encrypted-information addition unit 33 each time 
the encryption key Kc is updated. In addition, the key 
management unit 31 generates a secret key Ka based 
on information for computing a secret key Ka such as an 
authentication key and encrypts the encryption key Kc 

is by using the secret key Ka. The encrypted secret key Ka 
is output to the key management unit 41 of the applica- 
tion. It should be noted that the information for comput- 
ing the secret key Ka is received from the key 
management unit 41 . 

20 [0024] The encryption/decryption unit 32 encrypts a 
decrypted content received from the DTLA encryp- 
tion/decryption unit 24 by using the encryption key Kc 
received from the key management unit 31 and outputs 
the encrypted content to the encrypted-information 

25 addition unit 33. The encryption/decryption unit 32 
decrypts an encrypted content received from the 
encrypted-information addition unit 33 and outputs the 
decrypted content to the DTLA encryption/decryption 
unit 24. 

30 [0025] The encrypted-information addition unit 33 
adds a 2-bit CCI value and 1-bit encryption information 
to an encrypted content received from the encryp- 
tion/decryption unit 32. The 1-bit encryption information 
is switched from "even" to "odd" each time the encryp- 

35 tion key Kc is updated. The encrypted content with the 
2-bit CCI value and the 1-bit encryption information 
added thereto is supplied to an encrypted-content anal- 
ysis unit 42 of the application shown in Fig. 4. In addi- 
tion, the encrypted-information addition unit 33 also 

40 outputs an encrypted content received from the 
encrypted-content analysis unit 42 to the encryp- 
tion/decryption unit 32. 

[0026] Fig. 4 is a functional block diagram showing 
an application capable of playing back, recording and 

45 editing a content. The key management unit 41 is used 
for storing an authentication key Kn assigned to an 
application program. The key management unit 41 also 
outputs the authentication key Kn along with information 
for computing the secret key Ka to the key management 

so unit 31 employed in the content protection unit 25 before 
an exchange of contents with the application is started. 
In addition, the key management unit 41 decrypts the 
encryption key Kc encrypted by using the secret key Ka 
and received from the key management unit 31 in 

55 accordance with information showing whether or not the 
"odd" or "even" information has been switched, output- 
ting the decrypted encryption key Kc to an encryp- 
tion/decryption unit 43. The "odd" or "even" information 
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which is received from the encryption-information anal- 
ysis unit 42 shows updating status of the encryption key 
Kc included in the encryption information. 
[0027] The encrypted-content analysis unit 42 out- 
puts a content encrypted by using the encryption key Kc 
and received from the encrypted-information addition 
unit 33 to the encryption/decryption unit 43 and the 
encryption information added thereto to the key man- 
agement unit 41. In addition, the encrypted-content 
analysis unit 42 also outputs an encrypted content 
received from the encryption/decryption unit 43 to the 
encrypted-information addition unit 33. 
[0028] The encryption/decryption unit 43 decrypts a 
content encrypted by using the encryption key Kc and 
received from the encrypted-content analysis unit 42 by 
using the encryption key Kc received from the key man- 
agement unit 41 , outputting the decrypted content to a 
content processing unit 44. In addition, the encryp- 
tion/decryption unit 43 encrypts a content received from 
the content processing unit 44 and outputs the 
encrypted content to the encrypted-content analysis 
unit 42. 

[0029] The content processing unit 44 carries out 
processing such as a playback, recording or editing 
operation on a content supplied thereto in accordance 
with an operation carried out by the user. It should be 
noted that, since the content processing unit 44 
receives a CCI value included in the encryption informa- 
tion analyzed by the encrypted-content analysis unit 42, 
the content processing unit 44 does not carry out 
processing violating the CCI value such as a copy oper- 
ation that would exceed a maximum number of permit- 
ted copy operations. 

[0030] It should be noted that, by implementing the 
IEEE1394 interface 1 1 in a single LSI (Large Scale Inte- 
grated Circuit), it is possible to avoid an illegal operation 
such as an operation to read out a decrypted content 
from a position in a circuit. 

[0031] Next, input processing to supply a content to 
an application is explained by referring to a flowchart 
shown in Fig. 5. Before this input processing is carried 
out, the content encrypted in accordance with the DTLA 
method is supplied to the IEEE1394 interface 11 and 
the CCI thereof is detected by the CCI detection unit 23 
and supplied to the key management unit 31 employed 
in the content protection unit 25. The content encrypted 
in accordance with the DTLA method is decrypted by 
the DTLA encryption/decryption unit 24 and supplied to 
the encryption/decryption unit 32 employed in the con- 
tent protection unit 25. 

[0032] As shown in Fig. 5, the flowchart begins with 
a step S1 at which the key management unit 41 of the 
application makes a request for a content input, and out- 
puts an authentication key Kn and information for com- 
puting a secret key Ka stored therein to the key 
management unit 31 employed in the content protection 
unit 25. 

[0033] At the next step S2, the key management 



unit 31 forms a judgment as to whether or not the 
authentication key Kn received from the key manage- 
ment unit 41 Is valid. If the outcome of the judgment 
indicates that the authentication key Kn is valid, the flow 

5 of the procedure goes on to a step S3. 

[0034] At the step S3, the key management unit 31 
reads out a source key Ks corresponding to the value of 
the CCI from the key storage unit 26 and then generates 
an encryption key Kc from the source Ks and a random 

10 number, outputting the encryption key Kc to the encryp- 
tion/decryption unit 32. In addition, the key manage- 
ment unit 31 also resets a timer to 0. The timer is used 
for measuring a timing to update the encryption key Kc. 
[0035] At the next step S4, the key management 

75 unit 31 generates a secret key Ka by using the informa- 
tion for computing the secret key Ka. Then, the key 
management unit 31 encrypts the encryption key Kc by 
using the secret key Ka and outputs the encrypted 
encryption key Kc to the key management unit 41 of the 

20 application. The key management unit 41 decrypts the 
encrypted encryption key Kc. 

[0036] At the next step S5, the encryption/decryp- 
tion unit 32 encrypts a decrypted content received from 
the DTLA encryption/decryption unit 24 by using the 

25 encryption key Kc received from the key management 
unit 31 and outputs the encrypted content to the 
encrypted-information addition unit 33. 
[0037] At the next step S6, the encrypted-informa- 
tion addition unit 33 generates encryption information 

30 comprising a CCI value and information showing updat- 
ing status of the encryption key Kc, adding the gener- 
ated encryption information to an encrypted content 
received from the encryption/decryption unit 32. Since 
the encryption key Kc has not been updated in this 

35 case, the status information is even. The encrypted- 
information addition unit 33 then outputs the encrypted 
content with the encryption information added thereto to 
the encrypted-content analysis unit 42 of the applica- 
tion. The encrypted-content analysis unit 42 forms a 

40 judgment as to whether or not the information showing 
updating status of the encryption key Kc has been 
switched and outputs the outcome of the judgment to 
the key management unit 41. On the basis of the out- 
come of the judgment, the key management unit 41 

45 supplies the current encryption key Kc to the encryp- 
tion/decryption unit 43. The encryption/decryption unit 
43 decrypts the content by using the encryption key Kc 
and outputs the decrypted content to the content 
processing unit 44. 

so [0038] At the next step S7, the key management 
unit 31 forms a judgment as to whether or not ail con- 
tents have been output from the content protection unit 
25 to the application. If the outcome of the judgment 
indicates that not all contents have been output from the 

55 content protection unit 25 to the application, the flow of 
the procedure goes on to a step S8. At the step S8, the 
key management unit 31 refers to its own timer to detect 
a time at which the present encryption key Kc is used. 
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The key management unit 31 then forms a judgment as 
to whether or not the detected time has exceeded a pre- 
determined period of typically 30 seconds to 120 sec- 
onds. If the outcome of the judgment indicates that the 
interval between the detected time and the most recent 
time to update the encryption key Kc has not exceeded 
the predetermined period, the flow of the procedure 
goes back to the step S5 to repeat the processing 
thereof and the subsequent pieces of processing. 
[0039] If the outcome of the judgment formed at the 
step S8 indicates that the detected time has exceeded 
the predetermined period, on the other hand, the flow of 
the procedure goes on to a step S9. At the step S9, the 
key management unit 31 generates or updates the 
encryption key Kc by using the source key Ks and a 
regenerated random number, outputting the new 
encryption key Kc to the encryption/decryption unit 32. 
In addition, the key management unit 31 resets its own 
timer to 0. 

[0040] Then, the flow of the procedure goes back to 
the step S4. The subsequent pieces of processing are 
repeated until the outcome of the judgment formed at 
the step S7 indicates that all contents have been output 
from the content protection unit 25 to the application. It 
should be noted, however, that the information indicat- 
ing the updating status of the encryption key Kc is 
switched from "even" to "odd" since the encryption key 
Kc is updated at the step S9. As described above, the 
information indicating the updating status of the encryp- 
tion key Kc is included in the encryption information 
added at the step S6. The encryption key Kc supplied 
from the key management unit 41 to the encryp- 
tion/decryption unit 32 is also updated in accordance 
with the information indicating the updating status of the 
encryption key Kc. 

[0041 ] If the outcome of the judgment formed at the 
step S2 indicates that the authentication key Kn is 
invalid, on the other hand, the flow of the procedure 
goes on to a step S10. At the step S10, the key man- 
agement unit 31 informs the key management unit 41 of 
the fact that the authentication ends with no-go status. 
[0042] The following description explains process- 
ing to output a content processed by an application to 
the IEEE1 394 bus 2 by referring to a flowchart shown in 
Fig. 6. This output processing is carried out after the 
content edited by the content processing unit 44 of the 
application is supplied to the encryption/decryption unit 
43. 

[0043] As shown in the figure, the flowchart begins 
with a step S21 at which the key management unit 41 of 
the application makes a request for an operation to out- 
put a content to the IEEE1394 bus 2. The key manage- 
ment unit 41 also outputs a stored authentication key 
Kn, information for computing the secret key Ka and a 
CCI value set for the output content to the key manage- 
ment unit 31 employed in the content protection unit 25. 
[0044] At the next step S22, the key management 
unit 31 forms a judgment as to whether the authentica- 



tion key Kn received from the key management unit 41 
is valid or invalid. If the outcome of the judgment indi- 
cates that the authentication key Kn is valid, the flow of 
the procedure goes on to a step S23. 

5 [0045] At the step S23, the key management unit 
31 reads out a source key Ks corresponding to the CCI 
value supplied by the key management unit 41 from the 
key storage unit 26 and then generates an encryption 
key Kc from the source key Ks and a random number, 

10 outputting the encryption key Kc to the encryp- 
tion/decryption unit 32. At the next step S24, the key 
management unit 31 generates a secret key Ka by 
using the information for computing the secret key Ka 
from the key management unit 41. Then, the key man- 

75 agement unit 31 encrypts the encryption key Kc gener- 
ated at the step S22 by using the secret key Ka and 
outputs the encrypted encryption key Kc to the key 
management unit 41 of the application. The key man- 
agement unit 41 decrypts the encrypted encryption key 

20 Kc and outputs the decrypted encryption key Kc to the 
encryption/decryption unit 43. 

[0046] At the next step S25, the encryption/decryp- 
tion unit 43 of the application encrypts a decrypted con- 
tent received from the content processing unit 44 by 

25 using the encryption key Kc received from the key man- 
agement unit 41 and outputs the encrypted content to 
the encryption/decryption unit 32 by way of the 
encrypted-content analysis unit 42 and the encrypted- 
information addition unit 33. 

30 [0047] At the next step S26, the encryption/decryp- 
tion unit 32 decrypts the encrypted content received 
from the encryption/decryption unit 43 of the application 
by using the encryption key Kc received from the key 
management unit 31 at the step S23 and outputs the 

35 decrypted content to the DTLA encryption/decryption 
unit 24. 

[0048] At the next step S27, the DTLA encryp- 
tion/decryption unit 24 encrypts the decrypted content 
received from the encryption/decryption unit 32 

40 employed in the content protection unit 25 in accord- 
ance with the DTLA method and outputs the encrypted 
content to the input/output unit 22. 
[0049] At the next step S28, the input/output unit 22 
outputs the content which has been encrypted in 

45 accordance with the DTLA method and is received from 
the DTLA encryption/decryption unit 24 to the 
IEEE1394 bus 2. 

[0050] It should be noted that, if the outcome of the 
judgment formed at the step S22 indicates that the 

so authentication key Kn is invalid, the flow of the proce- 
dure goes on to a step S29. At the step S29, the key 
management unit 31 notifies the key management unit 
41 of the application that the authentication of the 
authentication key Kn ends in no-go status. 

55 [0051] In addition, in the output processing, the 
encryption key Kc can also be changed periodically as 
is the case with the input processing described earlier. 
[0052] As described above, according to the 
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embodiment, the content protection unit 25 of the 
IEEE1394 interface 1 1 exchanges contents only with an 
application having a valid authentication key Kn. How- 
ever, an application capable of illegally copying a con- 
tent is conceivably capable of acquiring a valid 
authentication key Kn by utilization of some techniques 
and, hence, illegally utilizing a content. In order to solve 
this problem, in this present invention, the key manage- 
ment unit 31 of the content protection unit 25 for forming 
a judgment on the validity of an authentication key Kn 
stores a revocation list of illegally used authentication 
keys Kn. In processing to authenticate an authentication 
key Kn, the key management unit 31 also compares the 
authentication key Kn with those put on the revocation 
list besides a judgment on mutual matching of an ID and 
a signature which are included in the authentication key 
Kn. An authentication key Kn matching one on the revo- 
cation list is not determined to be a valid key even if the 
ID and the signature included in the authentication key 
Kn matches each other. 

[0053] It should be noted that there is conceived a 
technique whereby an authentication key Kn newly 
added to the revocation list is received by the key man- 
agement unit 31 through a network such as the Internet 
or the IEEE1394 bus 2. According to a conceivable 
technique of utilizing the revocation list, authentication 
keys Kn are cataloged on the list individually. There is 
also conceived a technique of utilizing the revocation list 
whereby a plurality of authentication keys Kn are catal- 
oged on the list simultaneously in a batch operation. In 
this case, the authentication keys Kn each have a pre- 
determined value on the MSB (Most Significant Bit) side 
of the ID of the key Kn. By cataloging a plurality of 
authentication keys Kn in this way, it is possible to deter- 
mine that all applications made by a specific software 
manufacturer are invalid. An example of such a software 
manufacturer is a software producer found to violate a 
contract which is made when an authentication key Kn 
is delivered. 

[0054] In addition, the content protection unit 25 is 
also capable of detecting an event of outputting of a 
content to an application and, if the number of such 
events is reported to the owner of the content copyright 
or the system administrator through a means such as 
the Internet, the user can be requested to pay a fee for 
using the content or the encryption system and the state 
of utilization of the encryption system can be recog- 
nized. 

[0055] It should be noted that the present invention 
can also be applied to isochronous and asynchronous 
packets of a content transmitted through an IEEE1394 
bus as well as packets of a content transmitted through 
other media. 

[0056] The computer program executed to carry out 
the pieces of processing described above can be pre- 
sented to the user by means of a providing medium 
such as an information recording medium like a CD- 
ROM or through a providing medium in the form of a 



network such as the internet or a digital satellite. 
Claims 

5 1. An information processing apparatus which is 
capable of editing a content with copyright informa- 
tion added thereto and is used for executing an 
application program having an authentication key 
(Kn) and a secret key (Ka), said information 

10 processing apparatus comprising: 

an encryption-key generation means (11) for 
generating an encryption key (Kc) by using a 
source key (Ks) corresponding to said copy- 

15 right information added to an input content; 

an encryption means (32) for encrypting the 
content by using said encryption key (Kc); 
a judgment means (31 ) for forming a judgment 
on validity of said application program by using 

20 said authentication key (Kn) received from said 

application program; 

a secret-key generation means for generating a 
secret key (Ka) by using said authentication 
key (Kn) received from said application pro- 

25 gram; and 

a supply means for supplying said encryption 
key (Kc) encrypted by using said secret key 
(Ka) generated by said secret-key generation 
means and said content encrypted by said 

30 encryption means (32) to said application pro- 

gram in dependence on a result of said judg- 
ment formed by said judgment means (31). 

2. An information processing apparatus according to 
35 claim 1 wherein said judgment means forms a judg- 
ment on validity of said authentication key by refer- 
ring to a revocation list. 

3. An information processing apparatus according to 
40 claim 1 wherein said encryption-key generation 

means generates an encryption key by using a 
source key corresponding to said copyright infor- 
mation and a random number. 

45 4. An information processing apparatus according to 
claim 1 wherein said encryption key is updated at 
predetermined intervals. 

5. An information processing method adopted in an 
so information processing apparatus which is capable 
of editing a content with copyright information 
added thereto and is used for executing an applica- 
tion program having an authentication key and a 
secret key, said information processing method 
55 comprising: 

an encryption-key generation step of generat- 
ing an encryption key by using a source key 
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corresponding to said copyright information 

added to an input content; 

an encryption step of encrypting the content by 

using said encryption key; 

a judgment step of forming a judgment on s 

validity of said application program by using 

said authentication key received from said 

application program; 

a secret-key generation step of generating a 
secret key by using said authentication key io 
received from said application program; and 
a supply step of supplying said encryption key 
encrypted by using said secret key generated 
at said secret-key generation step and said 
content encrypted at said encryption step to is 
said application program in dependence on a 
result of said judgment formed at said judg- 
ment step. 



9. A providing medium according to claim 8 wherein, 
at said encryption-key generation step, an encryp- 
tion key is generated by using a source key corre- 
sponding to said copyright information and a 
random number. 

10. A providing medium according to claim 8 wherein 
said encryption key is updated at predetermined 
intervals. 



6. An information processing method according to 20 
claim 5 whereby, at said encryption-key generation 
step, an encryption key is generated by using a 
source key corresponding to said copyright infor- 
mation and a random number. 

25 

7. An information processing method according to 
claim 5 whereby said encryption key is updated at 
predetermined intervals. 



8. A providing medium for providing a program to be 30 
read out by a computer for driving an information 
processing apparatus, which is capable of editing a 
content with copyright information added thereto 
and is used for executing an application program 
having an authentication key and a secret key, to 35 
carry out processing including: 



an encryption-key generation step of generat- 
ing an encryption key by using a source key 
corresponding to said copyright information 40 
added to an input content; 
an encryption step of encrypting the content by 
using said encryption key; 
a judgment step of forming a judgment on 
validity of said application program by using 45 
said authentication key received from said 
application program; 

a secret-key generation step of generating a 
secret key by using said authentication key 
received from said application program; and so 
a supply step of supplying said encryption key 
encrypted by using said secret key generated 
at said secret-key generation step and said 
content encrypted at said encryption step to 
said application program in dependence on a 55 
result of said judgment formed at said judg- 
ment step. 
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(input processing start) 

T • — 



F I G.5 



REQUEST A CONTENT INPUT, 
RECEIVE INFORMATION FOR 
COMPUTATION OF THE 
AUTHENTICATION KEY Kn 
AND THE SECRET KEY Ka 



SI 



ir S2 
<IS THE AUTHENTICATION OK ?> 



NO 



JYES 



GENERATE AN ENCRYPTION KEY 
Kc BY USING THE SOURCE KEY Ks. 
RESET THE TIMER 



S3 



ENCRYPT THE ENCRYPTION 
KEY Kc BY USING THE SECRET 
KEY Ka AND OUTPUT THE 
ENCRYPTED ENCRYPTION KEY Kc 



S4 



ENCRYPT THE CONTENT BY 
USING THE ENCRYPTION KEY Kc 



S5 



S6 



ADD THE ENCRYPTION 
INFORMATION TO THE 
CONTENT AND OUTPUT 
THE CONTENT 



SIO 



REPORT THE 

AUTHENTICATION 

FAILURE 



S7 



< 



HAVE ALL CONTENTS 
BEEN OUTPUT ? 



NO A 



NO 



NO / HAS THE PREDETERMINED 
PERIOD BEEN EXCEEDED ? 



YES 



(end) 



RESET THE TIMER, 
UPDATE THE ENCRYPTION KEY Kc 



S9 
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(output processing start) F I G 6 





f 


REQUEST A CONTENT OUTPUT. 
OUTPUT CCI VALUE. 
INFORMATION FOR COMPUTATION 
OF THE AUTHENTICATION KEY 
Kn AND THE SECRET KEY Ka 




f S22 



S2t 



< (lS THE AUTHENTICATION OK ?> 



NO 



YES 



GENERATE AN ENCRYPTION KEY 
Kc BY USING THE SOURCE KEY Ks 



S23 



S24 



ENCRYPT THE ENCRYPTION 
KEY Kc BY USING THE SECRET 
KEY Ka AND OUTPUT THE 
ENCRYPTED ENCRYPTION KEY Kc 



S29 



REPORT THE 

AUTHENTICATION 

FAILURE 





i 


LET THE APPLICATION ENCRYPT 
THE CONTENT BY USING THE 
ENCRYPTION KEY Kc 






DECRYPT THE COI 
THE ENCRYPTIOh 


NTENT BY USING 
J KEY Kc 



S25 



S26 



ENCRYPT THE CONTENT 
ON THE BASIS OF DLTA 



S27 



OUTPUT THE RESULT 



S28 



(end) 
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